| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2023-23814 | WordPress Calendar Event Multi View plugin <= 1.4.13 - Broken Access Control vulnerability | codepeople | CP Multi View Event Calendar | Low | 3.8 | 2024-12-09 11:31:51 | Deep Dive |
| CVE-2024-5020 | Multiple Plugins <= (Various Versions) - Authenticated (Contributor+) Stored DOM-Based Cross-Site Scripting via FancyBox JavaScript Library | extendthemes | Colibri Page Builder | Medium | 6.4 | 2024-12-04 08:22:47 | Deep Dive |
| CVE-2024-10490 | Authentication bypass flaw in several mapp components | B&R Industrial Automation GmbH | B&R mapp Cockpit | 超危 | - | 2024-12-02 08:46:44 | Deep Dive |
| CVE-2024-11409 | Grid View Gallery <= 1.0 - Authenticated (Editor+) PHP Object Injection | priyajain2802 | Grid View Gallery | High | 7.2 | 2024-11-21 02:06:40 | Deep Dive |
| CVE-2024-51906 | WordPress RSV 360 View plugin <= 1.0 - Cross Site Scripting (XSS) vulnerability | Ravi Kumar Vanukuru | RSV 360 View | Medium | 6.5 | 2024-11-19 16:31:05 | Deep Dive |
| CVE-2024-9526 | Stored XSS in Kubeflow Pipeline View | Kubeflow | Kubeflow Pipeline View | - | - | 2024-11-18 13:30:22 | Deep Dive |
| CVE-2024-37365 | FactoryTalk View ME Remote Code Execution Vulnerability via Project Save Path | Rockwell Automation | FactoryTalk View Machine Edition | High | 7.3 | 2024-11-12 14:52:56 | Deep Dive |
| CVE-2016-15040 | Kento Post View Counter <= 2.8 - SQL Injection | - | Kento Post View Counter | Critical | 9.8 | 2024-10-16 06:43:32 | Deep Dive |
| CVE-2022-4974 | Freemius SDK <= 2.4.2 - Missing Authorization Checks | dashlabsltd | YASR – Yet Another Star Rating Plugin for WordPress | Medium | 6.3 | 2024-10-16 06:43:30 | Deep Dive |
| CVE-2024-45246 | Diebold Nixdorf – CWE-427: Uncontrolled Search Path Element | Diebold Nixdorf | Vynamic View prior to v5.9.5 | High | 7.3 | 2024-10-06 11:49:16 | Deep Dive |
| CVE-2024-45245 | Diebold Nixdorf – CWE-200: Exposure of Sensitive Information to an Unauthorized Actor | Diebold Nixdorf | Vynamic View prior | High | 7.8 | 2024-10-06 07:28:37 | Deep Dive |
| CVE-2024-45823 | FactoryTalk® Batch View™ Authentication Bypass Vulnerability via shared secrets | Rockwell Automation | FactoryTalk® Batch View™ | High | 8.1 | 2024-09-12 14:20:49 | Deep Dive |
| CVE-2024-45824 | FactoryTalk® View Site Edition Remote Code Execution Vulnerability via Lack of Input Validation | Rockwell Automation | FactoryTalk View Site Edition | Critical | 9.8 | 2024-09-12 14:05:22 | Deep Dive |
| CVE-2024-7513 | Rockwell Automation FactoryTalk® View Site Edition Code Execution Vulnerability via File Permissions | Rockwell Automation | FactoryTalk View Site Edition | - | - | 2024-08-14 19:48:47 | Deep Dive |
| CVE-2024-41726 | SKYSEA Client View 安全漏洞 | Sky Co.,LTD. | SKYSEA Client View | - | - | 2024-07-29 08:51:08 | Deep Dive |
| CVE-2024-41143 | SKYSEA Client View 安全漏洞 | Sky Co.,LTD. | SKYSEA Client View | - | - | 2024-07-29 08:51:05 | Deep Dive |
| CVE-2024-41139 | SKYSEA Client View 安全漏洞 | Sky Co.,LTD. | SKYSEA Client View | - | - | 2024-07-29 08:51:01 | Deep Dive |
| CVE-2024-6560 | Addonify – Quick View For WooCommerce <= 1.2.16 - Unauthenticated Full Path Dislcosure | addonify | Addonify – Quick View For WooCommerce | Medium | 5.3 | 2024-07-20 02:37:15 | Deep Dive |
| CVE-2024-37369 | Rockwell Automation FactoryTalk® View SE Local Privilege Escalation Vulnerability via Local File Permissions | Rockwell Automation | FactoryTalk® View SE | - | - | 2024-06-14 16:50:20 | Deep Dive |
| CVE-2024-37368 | Rockwell Automation FactoryTalk® View SE v11 Information Leakage Vulnerability via Authentication Restriction | Rockwell Automation | FactoryTalk® View SE | - | - | 2024-06-14 14:30:53 | Deep Dive |